Luxury fashion house Christian Dior Couture has disclosed a data breach impacting U.S.-based customers, involving sensitive personal identifiers but not financial data.
According to a notice sent to affected individuals on July 18, Dior’s security team first identified signs of a potential cybersecurity incident on May 7. An ensuing investigation, supported by unnamed third-party cybersecurity experts, determined that an unauthorized actor had gained access to a Dior database containing personal customer information on January 26, 2025.
The compromised data includes:
- Full names
- Contact information
- Physical addresses
- Birth dates
- Government-issued identification numbers such as passport or driver’s license details
Dior states that no payment information, such as credit card numbers or bank account details, was stored in the affected system.
Christian Dior Couture is the fashion division of the French luxury conglomerate LVMH Moët Hennessy Louis Vuitton. Known globally for its high-end clothing, accessories, and fragrances, the company maintains boutiques in major cities across the U.S., where it collects customer data for clienteling and loyalty services. This breach primarily impacts clients in the U.S. and may affect both online and in-store customers who shared personal information with the brand.
While Dior’s investigation found no evidence of unauthorized access beyond the initial breach date in January, the company has taken unspecified actions to bolster its network defenses. Law enforcement has been notified, and external experts confirmed the breach is now contained.
To mitigate potential fallout, Dior is offering affected individuals a two-year complimentary subscription to Experian IdentityWorks, which includes credit monitoring, identity theft insurance, and fraud resolution support. Customers are advised to enroll by October 31, 2025.
The company urges vigilance and encourages recipients to monitor credit reports and account statements for suspicious activity. Dior’s notification also includes guidance on placing fraud alerts or credit freezes, and how to report identity theft to law enforcement and the Federal Trade Commission.
While Dior has not disclosed how many customers were affected, the sensitivity of the exposed data and the delay between the breach and its discovery raise concerns about the potential for identity fraud. Customers are advised to act promptly to secure their information and take advantage of the offered protections.
Leave a Reply